How to Strengthen Healthcare Cybersecurity

Cybersecurity and patient privacy go hand in hand within every healthcare organization. There is growing federal scrutiny, which is changing things for the healthcare industry. HealthTech takes a deep dive into how to strengthen your cybersecurity, the costs associated with cybersecurity, and tips to support your cybersecurity strategy.  

“Recovering from a ransomware attack will cost a healthcare organization $1.85 million, on average, and take about a week to resolve, according to Sophos’ most recent report. 

Healthcare organizations are also more likely than organizations in other sectors to pay the ransom, but when they do, they may not get back all their data. And just 78 percent of healthcare organizations have cyber insurance coverage, according to Sophos’ “The State of Ransomware in Healthcare 2022.” 

As healthcare systems face the daunting proliferation of cyberthreats and vulnerabilities, the federal government has continued to keep a close watch on the sector. The landscape has drastically evolved since HIPAA was signed into law in 1996. 

This spring, the U.S. Senate introduced the PATCH Act, a bipartisan bill targeting medical device security. In a statement of support for the legislation, the American Hospital Association wrote, “Cyber vulnerabilities in medical devices, often containing outdated legacy technology, have posed a significant cyber risk to hospitals.”  

With increased government scrutiny and a volatile threat landscape, healthcare organizations may also experience insurers demanding to see stronger cybersecurity controls in place in response to major losses from cyber coverage during the pandemic. Purchasing cyber insurance without understanding the requirements or the extent of coverage needed could end up being more of a hindrance than a help.” 

Read the full article here.

9 Ways To Make Cybersecurity Awareness Training More Engaging

Cybersecurity awareness training doesn’t have to be boring. Real Leaders explores 9 ways to make it more engaging with your employees. When humans are the number one reason for data breaches, it is imperative to create a security culture in every department.  

“Phishing was responsible for the highest number of cyber compromises in 2021. As a result, more and more businesses are investing in security training and awareness initiatives. 

New evidence proves that regular training exercises can positively influence security culture and enable employees to defend against ransomware-laced phishing attempts and related social engineering attacks. 

Having said that, nearly all (85%) of employees are disengaged at work. That’s why it is imperative for organizations to design programs that encourage training participation.” 

Read the full article here.  

What Is Cybersecurity Awareness?

What is cybersecurity awareness training, and what works best? Cybercriminals work hard to exploit careless employees’ mistakes- the adage is true that humans are the weakest link. We Live Security explores several trends highlighting the urgent need for you to implement a cybersecurity awareness training program.  

“Research reveals that 82% of data breaches analyzed in 2021 involved a “human element.” It’s an inescapable fact of modern cyberthreats that employees represent a top target for attack. But give them the knowledge needed to spot the warning signs of an attack, and to understand when they may be putting sensitive data at risk, and there’s a huge opportunity to advance risk mitigation efforts,” according to We Live Security.  

Read the full article here.